106.13.26.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 21 04:21:29 localhost sshd\[25218\]: Invalid user ftp from 106.13.26.31 port 53148 Aug 21 04:21:29 localhost sshd\[25218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 21 04:21:31 localhost sshd\[25218\]: Failed password for invalid user ftp from 106.13.26.31 port 53148 ssh2	2019-08-21 10:29:12
attackbotsspam	Aug 19 12:46:47 game-panel sshd[20796]: Failed password for root from 106.13.26.31 port 47394 ssh2 Aug 19 12:50:43 game-panel sshd[20941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 19 12:50:45 game-panel sshd[20941]: Failed password for invalid user owen from 106.13.26.31 port 40488 ssh2	2019-08-20 00:41:20
attack	Aug 12 18:08:28 vps647732 sshd[29266]: Failed password for root from 106.13.26.31 port 44870 ssh2 Aug 12 18:13:37 vps647732 sshd[29376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 ...	2019-08-13 00:17:05
attack	Aug 2 21:13:16 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: Invalid user hacker from 106.13.26.31 Aug 2 21:13:16 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 2 21:13:18 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: Failed password for invalid user hacker from 106.13.26.31 port 46734 ssh2 Aug 2 21:26:25 Ubuntu-1404-trusty-64-minimal sshd\[12750\]: Invalid user botmaster from 106.13.26.31 Aug 2 21:26:25 Ubuntu-1404-trusty-64-minimal sshd\[12750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31	2019-08-03 06:39:19
attackspam	Jul 29 05:16:57 xb0 sshd[6252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:16:59 xb0 sshd[6252]: Failed password for r.r from 106.13.26.31 port 46130 ssh2 Jul 29 05:16:59 xb0 sshd[6252]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul 29 05:38:13 xb0 sshd[2220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:38:15 xb0 sshd[2220]: Failed password for r.r from 106.13.26.31 port 39414 ssh2 Jul 29 05:38:15 xb0 sshd[2220]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul 29 05:40:56 xb0 sshd[27144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:40:57 xb0 sshd[27144]: Failed password for r.r from 106.13.26.31 port 34368 ssh2 Jul 29 05:40:57 xb0 sshd[27144]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul........ -------------------------------	2019-07-29 20:46:01

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.26.62	attackspam	(sshd) Failed SSH login from 106.13.26.62 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 13:57:38 amsweb01 sshd[31506]: Invalid user han from 106.13.26.62 port 41772 Aug 30 13:57:41 amsweb01 sshd[31506]: Failed password for invalid user han from 106.13.26.62 port 41772 ssh2 Aug 30 14:11:31 amsweb01 sshd[1037]: Invalid user cosmo from 106.13.26.62 port 52992 Aug 30 14:11:33 amsweb01 sshd[1037]: Failed password for invalid user cosmo from 106.13.26.62 port 52992 ssh2 Aug 30 14:16:11 amsweb01 sshd[1795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 user=root	2020-08-30 20:42:46
106.13.26.62	attackspam	2020-08-27T01:25:04.712830ks3355764 sshd[28109]: Invalid user ide from 106.13.26.62 port 52384 2020-08-27T01:25:06.056295ks3355764 sshd[28109]: Failed password for invalid user ide from 106.13.26.62 port 52384 ssh2 ...	2020-08-27 07:47:06
106.13.26.62	attack	Aug 1 16:26:32 fhem-rasp sshd[4689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 user=root Aug 1 16:26:35 fhem-rasp sshd[4689]: Failed password for root from 106.13.26.62 port 58614 ssh2 ...	2020-08-02 01:43:48
106.13.26.62	attackspambots	Jul 18 18:11:06 master sshd[2173]: Failed password for invalid user by from 106.13.26.62 port 58152 ssh2 Jul 18 18:17:52 master sshd[2278]: Failed password for invalid user rcs from 106.13.26.62 port 36046 ssh2 Jul 18 18:22:11 master sshd[2357]: Failed password for invalid user maint from 106.13.26.62 port 47722 ssh2 Jul 18 18:25:54 master sshd[2399]: Failed password for invalid user unturned from 106.13.26.62 port 59412 ssh2 Jul 18 18:29:37 master sshd[2445]: Failed password for invalid user user from 106.13.26.62 port 42848 ssh2 Jul 18 18:33:19 master sshd[2905]: Failed password for invalid user admin from 106.13.26.62 port 54520 ssh2 Jul 18 18:37:02 master sshd[2953]: Failed password for invalid user facai from 106.13.26.62 port 37942 ssh2 Jul 18 18:40:47 master sshd[3070]: Failed password for invalid user mort from 106.13.26.62 port 49614 ssh2 Jul 18 18:44:36 master sshd[3130]: Failed password for invalid user antje from 106.13.26.62 port 33046 ssh2	2020-07-19 03:02:50
106.13.26.62	attackspambots	Jul 4 20:49:56 raspberrypi sshd[6366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 Jul 4 20:49:58 raspberrypi sshd[6366]: Failed password for invalid user gmodserver from 106.13.26.62 port 38880 ssh2 ...	2020-07-05 02:59:03
106.13.26.67	attack	Invalid user vicente from 106.13.26.67 port 44694	2020-06-29 23:28:03
106.13.26.67	attack	Jun 26 05:56:44 pve1 sshd[27796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 26 05:56:45 pve1 sshd[27796]: Failed password for invalid user lmy from 106.13.26.67 port 54842 ssh2 ...	2020-06-26 12:22:20
106.13.26.67	attack	Jun 22 13:28:07 sso sshd[8569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 22 13:28:09 sso sshd[8569]: Failed password for invalid user manjaro from 106.13.26.67 port 46612 ssh2 ...	2020-06-22 20:05:42
106.13.26.62	attack	(sshd) Failed SSH login from 106.13.26.62 (CN/China/-): 5 in the last 3600 secs	2020-06-09 21:26:08
106.13.26.67	attack	Jun 9 06:40:59 eventyay sshd[3116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 9 06:41:01 eventyay sshd[3116]: Failed password for invalid user nagios from 106.13.26.67 port 34968 ssh2 Jun 9 06:44:35 eventyay sshd[3323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 ...	2020-06-09 12:50:46
106.13.26.67	attack	Jun 6 23:04:41 santamaria sshd\[27005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root Jun 6 23:04:43 santamaria sshd\[27005\]: Failed password for root from 106.13.26.67 port 54594 ssh2 Jun 6 23:08:13 santamaria sshd\[27091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root ...	2020-06-07 08:13:25
106.13.26.67	attack	$f2bV_matches	2020-06-01 17:49:29
106.13.26.67	attackbots	2020-05-25T03:49:46.146220shield sshd\[19492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root 2020-05-25T03:49:47.570627shield sshd\[19492\]: Failed password for root from 106.13.26.67 port 48766 ssh2 2020-05-25T03:53:02.616357shield sshd\[20089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root 2020-05-25T03:53:04.951047shield sshd\[20089\]: Failed password for root from 106.13.26.67 port 35752 ssh2 2020-05-25T03:56:26.844751shield sshd\[20847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root	2020-05-25 12:01:22
106.13.26.62	attackbots	Brute force SMTP login attempted. ...	2020-05-24 23:58:39
106.13.26.67	attackbots	ssh intrusion attempt	2020-05-22 15:05:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.26.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18464
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.26.31.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 20:45:51 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 31.26.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 31.26.13.106.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
77.73.68.100	attack	Jul 23 05:07:44 mx01 sshd[30109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.73.68.100 user=r.r Jul 23 05:07:47 mx01 sshd[30109]: Failed password for r.r from 77.73.68.100 port 52448 ssh2 Jul 23 05:07:47 mx01 sshd[30109]: Received disconnect from 77.73.68.100: 11: Bye Bye [preauth] Jul 23 05:07:50 mx01 sshd[30111]: Invalid user admin from 77.73.68.100 Jul 23 05:07:50 mx01 sshd[30111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.73.68.100 Jul 23 05:07:52 mx01 sshd[30111]: Failed password for invalid user admin from 77.73.68.100 port 57844 ssh2 Jul 23 05:07:52 mx01 sshd[30111]: Received disconnect from 77.73.68.100: 11: Bye Bye [preauth] Jul 23 05:07:52 mx01 sshd[30113]: Invalid user admin from 77.73.68.100 Jul 23 05:07:52 mx01 sshd[30113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.73.68.100 Jul 23 05:07:54 mx01 sshd[30113]: Fa........ -------------------------------	2019-07-23 23:23:59
5.196.72.58	attack	Invalid user user from 5.196.72.58 port 57430	2019-07-23 23:26:53
78.42.135.211	attackbots	Jul 23 17:08:08 vps647732 sshd[17522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.42.135.211 Jul 23 17:08:09 vps647732 sshd[17522]: Failed password for invalid user sara from 78.42.135.211 port 34824 ssh2 ...	2019-07-23 23:21:56
190.147.160.151	attackspam	Invalid user ftpuser from 190.147.160.151 port 35052	2019-07-23 23:56:22
192.241.136.237	attackspam	xmlrpc attack	2019-07-23 23:12:45
217.182.252.63	attackbots	Jul 23 14:23:19 MK-Soft-VM7 sshd\[7632\]: Invalid user tester from 217.182.252.63 port 49274 Jul 23 14:23:19 MK-Soft-VM7 sshd\[7632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.63 Jul 23 14:23:21 MK-Soft-VM7 sshd\[7632\]: Failed password for invalid user tester from 217.182.252.63 port 49274 ssh2 ...	2019-07-23 22:55:13
51.83.15.30	attackbots	Automatic report - Banned IP Access	2019-07-23 23:38:56
62.210.9.67	attack	WordPress wp-login brute force :: 62.210.9.67 0.056 BYPASS [23/Jul/2019:19:48:50 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-23 23:16:27
106.52.155.37	attackspam	23.07.2019 13:42:55 - Wordpress fail Detected by ELinOX-ALM	2019-07-23 23:50:16
14.176.122.29	attackbotsspam	3389BruteforceIDS	2019-07-23 22:52:02
37.139.21.75	attack	Jul 23 17:26:56 nextcloud sshd\[28981\]: Invalid user castis from 37.139.21.75 Jul 23 17:26:56 nextcloud sshd\[28981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.21.75 Jul 23 17:26:57 nextcloud sshd\[28981\]: Failed password for invalid user castis from 37.139.21.75 port 55554 ssh2 ...	2019-07-23 23:46:25
104.236.239.60	attackbotsspam	Jul 23 10:01:49 debian sshd\[21377\]: Invalid user bsd2 from 104.236.239.60 port 54992 Jul 23 10:01:49 debian sshd\[21377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.239.60 Jul 23 10:01:51 debian sshd\[21377\]: Failed password for invalid user bsd2 from 104.236.239.60 port 54992 ssh2 ...	2019-07-23 23:35:02
217.138.50.154	attackbotsspam	Jul 23 17:06:44 SilenceServices sshd[7554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.50.154 Jul 23 17:06:46 SilenceServices sshd[7554]: Failed password for invalid user annie from 217.138.50.154 port 48508 ssh2 Jul 23 17:16:08 SilenceServices sshd[14605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.50.154	2019-07-23 23:35:45
51.75.17.228	attackbotsspam	Jul 23 16:52:19 giegler sshd[18551]: Invalid user clark from 51.75.17.228 port 45830	2019-07-23 23:55:16
81.22.45.148	attackspambots	23.07.2019 14:21:09 Connection to port 9764 blocked by firewall	2019-07-23 22:41:16

最近上报的IP列表

113.118.192.165	193.248.148.163	60.167.132.80	183.178.214.246
212.199.114.139	170.239.204.160	203.86.24.203	209.103.109.218
149.66.99.249	202.253.211.143	128.199.119.22	155.110.124.169
43.243.127.89	66.137.87.128	153.136.129.143	44.101.184.12
138.182.103.165	82.156.41.95	188.166.117.213	116.196.83.230